"Case study on exploitation, detection and prevention of user account DoS through Advanced Persistent Threats"
Title | "Case study on exploitation, detection and prevention of user account DoS through Advanced Persistent Threats" |
Publication Type | Conference Paper |
Year of Publication | 2015 |
Authors | K. P. B. Anushka, Chamantha, A. P. Karunaweera, P. R. Priyashantha, H. D. R. Wickramasinghe, W. A. V. M. G. Wijethunge |
Conference Name | 2015 Fifteenth International Conference on Advances in ICT for Emerging Regions (ICTer) |
Date Published | Aug |
Publisher | IEEE |
ISBN Number | 978-1-4673-9441-3 |
Accession Number | 15700914 |
Keywords | advanced persistent threat, advanced persistent threats, APT, computer network security, Databases, denial of service, Electronic mail, invasive software, Irrigation, ISO standards, Monitoring, Protocols, pubcrawl170101, security analysts, Servers, sophisticated attack, system engineers, user account DoS, user account lockout features, usingastealthy attack mechanism, XMPP based botnet, XMPP bots |
Abstract | Security analysts implement various security mechanisms to protect systems from attackers. Even though these mechanisms try to secure systems, a talented attacker may use these same techniques to launch a sophisticated attack. This paper discuss about such an attack called as user account Denial of Service (DoS) where an attacker uses user account lockout features of the application to lockout all user accounts causing an enterprise wide DoS. The attack has being simulated usingastealthy attack mechanism called as Advanced Persistent Threats (APT) using a XMPP based botnet. Through the simulation, researchers discuss about the patterns associated with the attack which can be used to detect the attack in real time and how the attack can be prevented from the perspective of developers, system engineers and security analysts. |
URL | http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=7377687&isnumber=7377646 |
DOI | 10.1109/ICTER.2015.7377687 |
Citation Key | 7377687 |
- Protocols
- XMPP bots
- XMPP based botnet
- usingastealthy attack mechanism
- user account lockout features
- user account DoS
- system engineers
- sophisticated attack
- Servers
- security analysts
- pubcrawl170101
- advanced persistent threat
- Monitoring
- ISO standards
- Irrigation
- invasive software
- Electronic mail
- denial of service
- Databases
- computer network security
- APT
- advanced persistent threats